RE: SNMP full access backdoor on IOS

From: Chuck Larrieu (chuck@xxxxxxxxxxxxx)
Date: Wed Feb 28 2001 - 02:55:32 GMT-3

• Next message: Groupstudy: "Re: Bootcamp lab#6"
• Previous message: Chuck Larrieu: "RE: redistribute ospf 1 metric 2"
• Maybe in reply to: Rich Russell: "SNMP full access backdoor on IOS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Check out the nanog archives

http://www.merit.edu/mail.archives/nanog/

there has been an extensive discussion there.

I believe that Cisco is making patches available for all vulnerable IOS
images. Essentially, any image that supports ATM features may be vulnerable,
even if the platform on which it is installed does not have any ATM
hardware. I.e 2610 platform can support ATM IMA, and therefore any plus
image for the 2610 might make that router vulnerable, whether you have
installed the ima card or not.

Chuck

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of Fred
Nielsen
Sent: Tuesday, February 27, 2001 10:48 AM
To: ccielab@groupstudy.com
Subject: Re: SNMP full access backdoor on IOS

Details available at:
http://www.cisco.com/warp/public/707/ios-snmp-ilmi-vuln-pub.shtml

At 2/26/2001 09:57 AM, Rich Russell wrote:
>Did anyone else here about the backdoor with the community string of ILMI
>for all IOS's under 12.1.4s??
>
>Major security whole.
>
>www.thetestpage.net
>downloadable tests and router rack available
>

• Next message: Groupstudy: "Re: Bootcamp lab#6"
• Previous message: Chuck Larrieu: "RE: redistribute ospf 1 metric 2"
• Maybe in reply to: Rich Russell: "SNMP full access backdoor on IOS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:29:08 GMT-3